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ABSTRACT: Cryptography is the science of writing in secret message and is an ancient art. In data and 
telecommunications, cryptography is necessary when communicating over any untrusted medium, which includes just 
about any network, particularly over the Internet. Over the last two decades an interesting field of the cryptography has 
raised from non classical atomic theory, Quantum Physics. This field is known as Quantum cryptography. Unlike the 
classical cryptography of public and private key ciphers which analyse the strength of a cipher by means of mathematical 
attacks and formulas, the security of the quantum cryptography is ensured by laws of Quantum Physics. In this paper, we 
present a method for three party authentication using quantum cryptography. Our method depends on partial trusted third 
party, so that the key is not revealed to the trusted third party. 
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I. INTRODUCTION 

Crypto graphy[l] plays an important role in modern life as it allows for secure communication over insecure 
channels, even in the face of powerful adversaries. Cryptography has been used for the military and government 
communications for more than 2000 years, but only in the past 20 years has cryptography come to be used in day-to-day life. 
The expansion of the Internet from a small scale academic network to a global network enabling hundreds of billions of 
dollars of the electronic commerce was due in no small part to the availability of cryptography. The successful design of the 
multitudes of secure cryptographic algorithms — public key agreement, digital signatures, block and stream ciphers, hash 
functions, message authentication codes — and secure protocols that employ these primitives is a remarkable achievement. 
Of those that have been widely adopted, the majority have remained fundamentally secure despite years of intensive 
cryptanalysis and the advancing computer technology. 

Various security problems abound on the Internet. The servers of governments and the major corporations are 
subjected to denial of service attacks. Spyware, viruses, and malware are installed on the users' computers. Individuals fall 
victim to phishing attacks and the identity theft. Devices are subject to attacks that exploit the subtle variations in their power 
usage. These security problems do not arise as a result of a break of the cryptographic algorithms or protocols. Rather, they 
arise by working around the cryptography- why exert billions of hours of computer effort to break an advanced encryption 
protocol to crack a user's password when you can simply trick the user into telling you their password directly? 

In symmetric key cryptography, both parties must possess a secret key(shared key) which they must exchange prior 
to using any encryption. Distribution of the secret keys has been problematic until recently, because it involved face-to-face 
meeting, use of a trusted courier, or sending the key through an existing encryption channel. The first two are often 
impractical and always unsafe, while the third depends on the security of the previous key exchange. One solution is based 
on the mathematics, public key cryptography. In public key cryptography, the key distribution of the public keys is done 
through public key servers. When a person creates a key-pair, he/she keeps one key private and the other, public-key, is 
uploaded to a server where it can be accessed by anyone to send the user a private, encrypted, message. Another approach is 
based on physics- quantum cryptography. While public -key cryptography relies on the computational difficulty of certain 
hard mathematical problems, quantum cryptography relies on the laws of the quantum mechanics. 

II. QUANTUM CRYPTOGRAPHY 

Quantum cryptography[2] uses quantum mechanics to guarantee a secure communication. It enables two parties to 
produce a shared random bit string known only to them, which can be used as a shared key to encrypt and decrypt messages. 
An important and unique property of the quantum cryptography is the ability of the two communicating users to detect the 
presence of any third party trying to gain knowledge of the key. This results from a fundamental part of quantum mechanics - 
the process of measuring a quantum system in general disturbs the system. A third party trying to eavesdrop on the key must 
in some way measure it, thus introducing a detectable anomalies. By using quantum superpositions or quantum entanglement 
and transmitting information in the quantum states, a communication system can be implemented which detects 
eavesdropping. If the level of eavesdropping is below a certain threshold a key can be produced which is guaranteed as 
secure, otherwise no secure key is possible and the communication is aborted. 

The security of the quantum cryptography relies on the foundations of quantum mechanics, in contrast to traditional 
public key cryptography which relies on the computational difficulty of certain mathematical functions, and cannot provide 
any indication of eavesdropping or guarantee of key security. Quantum cryptography is only used to produce and distribute 
the key, not to transmit any message data. This key can then be used with any chosen encryption algorithm to encrypt and 
decrypt the message, which can then be transmitted over a standard communication channel. The algorithm most commonly 
associated with QKD is the one-time pad, as it is provably secure when used with the secret, random key. 
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III. RELATED WORK 

There are two three party quantum key distribution protocols(QKDps), one with implicit user authentication and the 
other with explicit mutual authentication^], are combined to demonstrate the merits of combining both classical and 
quantum cryptography. Also when compared with the classical three-party key distribution protocols, the proposed QKDPs 
easily resist replay attacks. This work presents a new direction in designing QKDPs by combining the advantages of 
classical with the quantum cryptography. There are few quantum key distribution protocols described in [4] such as B92 
quantum cryptographic protocol, BB84 quantum cryptographic protocol, Entanglement -based quantum key distribution and 
Quantum Bit Commitment (QBC) protocols. Also this paper includes protocol evaluating and comparison, using such 
criteria as the error possibility, quantum and classical memory bounds, noise sensitivity. 

Some of the advantages of the Quantum Cryptography over classical cryptography described in[5] i.e., it gives us 
perfectly secure data transmission. Also it discusses about Quantum Key Distribution and how important the quantum 
cryptographic protocols are to it. It also tells about how eavesdropping will be in quantum cryptography and its effects. The 
security of some of the quantum cryptographic protocols such as Six-state protocol, BB84 protocol, SARG04 protocol, 
Symmetric and Asymmetric three-state protocol is described in [6]. The authors also compare their performances in both the 
ideal case and in the realistic case and found that Efficient BB84 and Six-state protocols tolerate the highest QBER. 

IV. EXISTING SYSTEM 

In [3], the authors proposeda three-party quantum authenticated key distribution protocol (QAKD). This three- 
party QAKD is immune to the man-in-the-middle attack, while it performs both authentication and the key distribution with 
one step by utilizing a trusted third party. The weakness of this scheme is that it relies 100% on the trusted third party(TTP). 
The TTP has the ability to read all communication packets. In cryptography or network security, an authentication between 
parties unknown to each other is not possible without the third party that guarantees the identities of the participating parties. 
Thus, a TTP, which is a disinterested party trusted to complete a protocol [7], needs to be introduced. However, in a real 
world, such an idealized assumption cannot be always possible. For example, it may be too optimistic to make an assumption 
in key distribution schemes for medical applications. Patient information should be shared only between the patient and the 
doctors, so the third party for the key distribution system should not be able to read the encrypted confidential data. There 
must be a safeguard to protect the confidentiality even from the trusted third party in such applications. 

V. PROPOSED SYSTEM 

Let Alice and Bob intended to share an authenticated shared key 'K', which is an n- bit random number. Here we 
assume that every participant shares a secret shared key with the trusted centre in advance. Let K AT is the key shared 
between the Alice and Trusted Centre(TC), and K B T is the key shared between Bob and TC. Let h( K,M) is a hash value 
of a message M with key "k", generated using a hash function(e.g., SHA-1 or MD5). Assume that the TC has been notified 
to start the authentication session as follows: 

The TC generates two random numbers r A and r B and then computes: 
X=h(K AT ,r A )® (U A \\U B ) 
Y=h{K BT ,r B )® (U B \\U A ) 

Now r A II r B II X is polarized and encrypted using the pre- shared key K A T and the result is transmitted to Alice 
over a Quantum channel. Also r B II r A II Y is polarized and encrypted Using the pre- shared key K B T and the result is 
transmitted to Bob over another Quantum channel. 

Alice decrypts and measures the received qubits. She computes a hash value using K A T and r A and obtain the 
values of U A II U B . Then she verifies the values of U A and U B . 

Bob decrypts and measures the received qubits. She computes a hash value using K B T and r B and obtain the 

values of U B \\U A . Then she verifies the values of U A and U B . Thus after the successful completion of the session, both 
Alice and Bob are implicitly authenticated using the TC. 

A secret key 'K' is going to be established between Alice and Bob. The secret key will not revealed to others, even 
to Trusted centre. Key establishment is based on Shamir's three- pass protocol and Quantum superposition states. Here 
classical Shamir's three- pass protocol is combined with superposition states, because classical shamir's protocol is 
vulnerable to attacks [ 8]. 

In the following discussion, without losing generality, we can assume that message M is single photon encoded as 
M= I0> (i.e.., n=l and / ( =0) and Alice initiates a key distribution. 

(i) First, Alice and Bob generate their session keys K A = 0 A and K B = 0 B . 

(ii) Alice encrypts M with her encryption key K A . The resulting state can be described as 
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' cos G A sin 0. 



E Ka [M]:R(8 a )\Q>= 

1 -sint/ A cosa A J ^0 J 
= cos 6 A . I0> - sin 6 A . Il>= I \f/ x ) , 

Where E K indicates an encryption with K A . Such a resulting state is called as a superposition state . Alice sends 
the resulting state I y/ l ) to Bob. 

(iii) Bob receives the photon in I y/^) and encrypts it with his key K B . 
E Kg [E Ka [M]]: R( 6 b ).\ y/ l ) 

= cos( 6 B + 6 A ) I0> - sin {6 B + 6 A ) ll> 

= \y/ 2 ) 

The resulting state I y/ 2 ) is still a superposition state. Bob send it back to Alice. 

(iv) Alice receives and decrypts it by rotating it back with the angle 0 A (i.e., rotation of - 6 A )and sends the resulting 
superposition state I y/3) to Bob. 

D Ka [E Kb [E Ka [M]]]= E Kb [M]: R(-6> a ).I^ 2 > 

= cos 6 B . I0> - sin 6 B . ll> = I y/3) 

Where D K indicates a decryption with K A . 

(v) Bob receives and decrypts it by rotating it back with the angle 0 B (i.e., rotation of - 6 B ). 
D Kb [E Kb [M]]:R(-0 b ).I^3> 

f cos(-0 B ) sin(-0 B )^\ ( cosO B 



= 10). 



1^- sm(-9 B ) cos(-6> B ) J y- sin 0 B 

■C) 

Now, Bob has the original message M= 10 ) . 
After the key distribution phase, both the participants ave the key 'K'. 

VI. CONCLUSION 

This paper presents a Quantum authenticated key distribution protocol that can perform key distribution and also 
ensure that the participants of the communication are authentic, both implicitly and explicitly. This protocol provides new 
directions in Classical cryptography and Quantum cryptography. The Participants of the protocol trust the third party 
regarding the authentication part only. Thus the proposed protocol will be preferable for network systems which deal with 
highly sensitive information, such as military, hospitals, research facilities. Our protocol utilizes polarized photons in 
superposition states for authentication and key distribution which provides high security against many attacks. 
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